IS Security Analyst - Senior

  • Adventist Health System
  • Altamonte Springs, FL, USA
  • Dec 23, 2017

Job Description

The Senior Information Security Analyst will be part of the Security Operations Team. This team is responsible for the day-to-day monitoring, analysis, coordination and response to information security threats and vulnerabilities. The Senior analyst will provide technical direction and become a subject matter expert for the organization, while mentoring and developing team members around them. A Senior candidate should demonstrate strong leadership and communication skills, and must work independently as needed in a fast-paced environment.


• Perform expert, real-time analysis and correlation of logs and alerts

• Evaluate, assess, and escalate security events and incidents

• Expertly operate, tune, configure, and troubleshoot multiple security toolsets.

• Proactively identify threats across multiple security-relevant data sets

• Document, collaborate, and transition incident details to appropriate leadership

• Analyze, understand, and provide remediation plans for active threats and vulnerabilities

• Ingest IOC's from multiple intel sources

• Communicate and provide manger with work and project updates in a timely manner

• Expertly execute high priority incident response actions

• Technical SME for operational security projects

• Engage and mentor team members

• Continually develop new technical skills and capabilities

• Other duties as assigned



• Enterprise Domain experience is a must

• Knowledge of Active Directory, DNS, DHCP, GPO, PKI

• Understanding of networking concepts and configurations

• Understanding of varying networking protocols (TCP, UDP, SSH, SSL, etc)

• Demonstrated knowledge in SIEM solution(s) (LogRhythm, Splunk, ArcSight, etc)

• Demonstrated knowledge with Endpoint protection solutions

• Expert understanding of varying security applications (WireShark, MetaSploit, nMap, etc)

• Experience with scripting languages (PowerShell, Python, C, Java, etc)

• Experience with Firewalls, Proxies, IDS/IPS, DLP, CASB solutions.

• Demonstrated knowledge of Microsoft Operating Systems and configuration standards

• Demonstrated knowledge of Linux Operating Systems and configuration standards

• Understanding of Operating System interactions, communications and file systems

• Experience with Database technologies and queries (Microsoft SQL, MySQL, Oracle, etc)

• Understanding of common security frameworks (ISO, NIST, HiTrust)

• Understanding of varying industry data standards (PCI, HIPAA, etc)

• Strong understanding of parsing, analyzing and identifying events through security logs

• A broad understanding of information technology methodologies in multiple disciplines

• Comfortable with complex undocumented requirements and independent task research

• Demonstrated ability to determine and oversee remediation activities

• Familiar with information sharing specifications for cybersecurity

• Excellent time management skills to accomplish multiple concurrent tasks

• Strong interpersonal skills with a positive and enthusiastic attitude.

• Ability to work well with people of varying levels of technical abilities.

• Excellent oral and written communication skills.

• Ability to receive calls and text messages 24 hours a day, seven days per week.


• Bachelor's degree

• Working knowledge of healthcare or clinical physician clinical practice

• Knowledge of Tripwire, Sourcefire, AV, Proxies

• Experience with HIPAA, NIST, FISMA, FedRAMP, 27001, SOC audit processes


Security certifications (CISSP, CISM, SANS, CEH, Security +)

Non-Security Certifications (Microsoft, Cisco)